Windows Defender Tips & Tricks | BRIGHT Security Experts
At BRIGHT, we love to share our knowledge of helping business and technology leaders succeed in their digitalization, security, and analytics initiatives while making an impact.
BRIGHT SecOps team is sharing some tips & tricks in favour of ones who want to implement Windows Defender.
During the implementation of Microsoft Intune at BRIGHT, we had to get intimately familiar with Windows Defender and its management instrumentation. Overall, we came out quite impressed with the capabilities of the Security stack.
This article, however, is not covering Intune.
While we looked at Windows Defender, the first thing that got our attention was that many settings were available via the cloud console but not via the endpoint Gui. While they could be managed via PowerShell cmdlet, it is a real pain to do so.
(References: https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction and https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/enable-attack-surface-reduction)
The “attack surface reduction” rules make sense for anyone that has dealt with a malware-infested system. We went looking for a way for regular users to manage and experiment with them and came across this project – https://github.com/AndyFul/ConfigureDefender
You can grab the executable “ConfigureDefender” from the link above. Below, in the screenshots, is the recommended configuration we use in the office – you can apply it to your workstation.
That said, a HUGE disclaimer here – It might break your computer or network connectivity. Make sure you have a way out. A “system restore” point should suffice.
Paying for a state-of-the-art platform but not leveraging its capabilities is a pure waste of time and money. We share our experience how to get the maximum value out of ServiceNow and accelerate the return of investment.
Making an impact has always been one of the core values of BRIGHT. As the two-year mandate of the current BRIGHT Charity Committee ends and a new one is being inaugurated, we peek behind the curtains of the team’s endeavours.
BRIGHT is excited to announce a new partnership with DataRobot – the fastest-growing AI platform. Its bold vision to automate and accelerate every step of the journey from data to value inspires us to solve these challenges.